JBS Workbench ("the Service") is a research prototype operated by Lean Engineering for participating pilot agencies. This policy describes the limited data we collect, why we collect it, and the controls that govern access. By creating an account or being provisioned by an agency administrator, you acknowledge the practices below.
What we collect
- Account data — email address, display name, optional staff role descriptor, and the agency you are assigned to.
- Decision Capture Records (DCRR) — event metadata, AI output interpretations, the reasoning text you submit, confidence and accuracy estimates, and timestamps issued by our servers.
- Integrity signals — server-issued capture session IDs, IP address and user-agent snapshots taken at capture and completion, and submission velocity. These exist solely to detect tampering and after-the-fact "pencil whipping".
- Audit logs — record-status transitions and analyst dispositions, attributed to the acting user.
How data is used
Data is used exclusively to operate the workbench: to surface DRPI patterns, to support analyst reconstruction (CEGR), and to maintain a tamper-resistant forensic trail. We do not sell data, run advertising, or share data across pilot agencies.
Multi-tenant isolation
Every record is scoped to a single agency by row-level security. Staff can only read their own records. Analysts and admins can read agency-scoped data only for the agency they are assigned to. Cross-tenant access is prevented at the database layer.
Retention & immutability
Submitted records are immutable. Once a record is marked Completed, Expired, or Closed-Out it cannot be edited or deleted by any role, including administrators. Records are retained for the duration of the pilot engagement and any regulatory window your agency specifies.
Your rights
You may update your display name and password from the Settings page. Account deactivation is performed by your agency administrator via role removal — the underlying audit trail is preserved to protect forensic integrity. For data access requests outside this scope, contact your agency administrator.
Security
Authentication uses email + password with leaked-password screening (HIBP). Passwords must be at least 12 characters. All traffic is served over TLS. Production data is hosted on Lovable Cloud infrastructure.
Contact
For privacy questions, contact your agency administrator. They can escalate to the Lean Engineering operations team on your behalf.